[PATCH] DO NOT APPLY: test anti-features for PROD
Ian Jackson
ijackson at chiark.greenend.org.uk
Thu Jul 25 18:45:40 BST 2013
These environment variable and config changes allow me to recreate the
conditions for a PROD test.
Runes are:
I: # ./secnet -dvnc test-example/inside.conf
O: # ISEQP=50 DIE3=1 ./secnet -dvnc test-example/outside.conf
P: $ ping -I secnet-test-i 172.18.232.2
After O crashes, restart it with:
O: # ./secnet -dvnc test-example/outside.conf
Signed-off-by: Ian Jackson <ijackson at chiark.greenend.org.uk>
---
site.c | 3 ++
test-example/sites.conf | 50 +++++++++++++++++++++++++++++++++++++++++++++++
2 files changed, 53 insertions(+), 0 deletions(-)
diff --git a/site.c b/site.c
index 0b39232..3c2d734 100644
--- a/site.c
+++ b/site.c
@@ -1584,6 +1584,7 @@ static bool_t site_incoming(void *sst, struct buffer_if *buf,
slog(st,LOG_UNEXPECTED,"unexpected MSG3");
} else if (process_msg3(st,buf,source,msgtype)) {
transport_setup_msgok(st,source);
+if (getenv("DIE3")) { static int counter; assert(++counter<2); }
enter_new_state(st,SITE_SENTMSG4);
} else {
slog(st,LOG_SEC,"invalid MSG3");
@@ -1720,6 +1721,8 @@ static list_t *site_apply(closure_t *self, struct cloc loc, dict_t *context,
return NULL;
}
+index_sequence += atoi(getenv("ISEQP")?:"0");
+
assert(index_sequence < 0xffffffffUL);
st->index = ++index_sequence;
st->local_capabilities = 0;
diff --git a/test-example/sites.conf b/test-example/sites.conf
new file mode 100644
index 0000000..d349ae8
--- /dev/null
+++ b/test-example/sites.conf
@@ -0,0 +1,50 @@
+# secnet sites file autogenerated by make-secnet-sites version 0.1.18
+# Thu Jul 25 04:05:12 2013
+# Command line: ../make-secnet-sites sites sites.conf
+
+vpn-data {
+ test-example {
+ setup-retries 5;
+ hash sha1;
+ dh diffie-hellman("8db5f2c15ac96d9f3382d1ef4688fba14dc7908ae7dfd71a9cfe7f479a75d506dc53f159aeaf488bde073fe544bc91c099f101fcf60074f30c06e36263c03ca9e07931ce3fc235fe1171dc6d9316fb097bd4362891e2c36e234e7c16b038fd97b1f165c710e90537de66ee4f54001f5712b050d4e07de3fba07607b19b64f6c3","2");
+ key-lifetime 72000000;
+ wait-time 72000000;
+ renegotiate-time 10000;
+ # restrict-nets "172.18.232.0/28"
+ # Contact email address: <devnull at example.com>
+ setup-timeout 2000;
+
+ outside {
+ outside {
+ name "test-example/outside/outside";
+ key rsa-public("65537","129251483458784900555621175262818292872587807329014927540074484804119474262261383244074013537736576331652560727149001626325243856012659665194546933097292703586821422085819615124517093786704646988649444946154384037948502112302285511195679291084694375811092516151263088200304199780052361048758446082354317801941");
+ address "[127.0.0.1]"; port 16900;
+ link netlink {
+ routes "172.18.232.0/29";
+ ptp-address "172.18.232.1";
+ };
+ };
+ };
+ inside {
+ inside {
+ name "test-example/inside/inside";
+ mobile True;
+ key rsa-public("65537","130064631890186713927887504218626486455931306300999583387009075747001546036643522074275473238061323169592347601185592753550279410171535737146240085267000508853176463710554801101055212967131924064664249613912656320653505750073021702169423354903540699008756137338575553686987244488914481168225136440872431691669");
+ address "[127.0.0.1]"; port 16910;
+ link netlink {
+ routes "172.18.232.8/29";
+ ptp-address "172.18.232.9";
+ };
+ };
+ };
+ };
+};
+vpn {
+ test-example {
+ outside vpn-data/test-example/outside/outside;
+ inside vpn-data/test-example/inside/inside;
+
+ all-sites outside,inside;
+ };
+};
+all-sites vpn/test-example/all-sites;
--
tg: (9502034..) junk/prod-test (depends on: empty/tip)
More information about the sgo-software-discuss
mailing list